A page to show up #1 on Google when searching for "Jeremiah" (Currently #4). Only the prophet and TV show left! I have the edge, TV show is cancelled and the prophet isn't generating any new content.

The prophet, TV show, and that pesky Owyang guy going down!A page to show up #1 on Google when searching for "Jeremiah Grossman", and it FINALLY has!

Monday, April 23, 2007

XSS Attacks book

"XSS is the New Buffer Overflow, JavaScript Malware is the New Shell Code"

At long last, we put the finishing touches on our new book (XSS Attacks), the cover art, and sample chapter (including ToC). It’ll be sent to the printers May 5 and shipped a few days after. Woohoo!

I’ve written two bookforewords in the past, but this is my first experience as an author so I’m really excited about the release. Only a couple years ago the idea of an entire book dedicated to XSS would have been crazy. Today the general feeling is that there’s FINALLY going to be one available. Especially for me who must explain the finer points daily.

In writing this book, the shock to me was how much there is about XSS to cover. In fact there was so much data we had to cut back a significant amount, otherwise we’d have to write two books. What this also means is that the content found within the pages is high quality and densely packed. Great for people just getting up to speed on XSS and a solid reference for those who desire a deeper understanding of the attack technique specifics currently scattered all over.

I also wanted to give major kudos to the other authors who made this possible RSnake, Anton Rager, and especially Seth Fogie and pdp (architect), who really went above and beyond. You guys rocked. And thank you to Andrew Williams (Managing Editor, Syngress Publishing), a publisher I’d highly recommend to anyone and hope to work with again in the future. Writing a technical book is hard, really hard, and there is no substitute for a good team.

If you need a technical reviewer please don't hesitate to contact me. I'm currently waiting on Harlan Carvey's "Windows Forensic Analysis" to be shipped from the publisher for review and I'd love the chance to review yours as well. You can get a hold of me at andrewsmhay [at] gmail.com / www.andrewhay.ca if you're interested.

Congrats to Jeremiah et al. I'm looking forward to the book when it comes out. Minor nitpick of something that will probably get fixed anyway before it goes to press: are the references to XXS (e.g. SeXXS Offenders and Thinking outside the BoXXS) in the ToC typos or am I just missing something obvious? :>

If you want to send me advance PDFs of all the chapters, I'll be happy to proofread: reillyb [at] gmail.com. FWIW, I *hate* ebooks and even if I get PDFs I promise I'll hit Bookpool up for a print copy. :>